300,000+ Chrome users installed these malicious extensions posing as AI assistants — delete them right now

Unsuspecting Chrome users put their browsing data at risk by installing these 30 extensions which promised quick access to AI but were really after their passwords, emails and other data.
Hosted on MSN

Compromised Amazon Q extension told AI to delete everything – and it shipped

Malicious actor reportedly sought to expose AWS 'security theater' The official Amazon Q extension for Visual Studio Code (VS Code) was compromised to include a ...
The Hacker News

Eclipse Foundation Mandates Pre-Publish Security Checks for Open VSX Extensions

Eclipse Foundation to require pre-publish security checks for Open VSX extensions to reduce VS Code supply-chain risk.
Dark Reading

Google's Souped-up Chrome Store Review Process Foiled by Data-Stealer

Malicious yet legitimate-looking Google Chrome browser extensions that steal people's passwords and other sensitive data can still make it into the official app store, despite Google's adoption of a ...